New Contributor
•
3 Messages
intermittent DNS issue - Mesa, AZ
For the past two weeks I've been having an issue with DNS being unreliable. Occasionally, I get the "Page not Found" error in my browser, after a few reloads (few seconds typically) it will work correctly.
My router is using the standard ISP-provided DNS servers -
68.105.28.12
68.105.29.12
68.105.28.11
I've done an nslookup -d via command during one of these micro-outages, a normal result and a sample of the error are at the bottom of this post. I have done all the standard troubleshooting - restarting the modem, my router, etc. Note that this isn't a drop of my connection - if I'm doing something such as a download it doesn't pause or fail, it's a DNS problem.
Not sure where to go next to try to resolve this, it's not a dispatch-a-guy-to-my-house sort of problem.
Thanks,
Brian
-----
Here's a normal result:
C:\Users\bsoder>nslookup -d www.overclock.net
------------
Got answer:
HEADER:
opcode = QUERY, id = 1, rcode = NXDOMAIN
header flags: response, auth. answer, want recursion, recursion avail.
questions = 1, answers = 0, authority records = 1, additional = 0
QUESTIONS:
1.1.168.192.in-addr.arpa, type = PTR, class = IN
AUTHORITY RECORDS:
-> 168.192.IN-ADDR.ARPA
ttl = 86400 (1 day)
primary name server = 168.192.IN-ADDR.ARPA
responsible mail addr = (root)
serial = 0
refresh = 28800 (8 hours)
retry = 7200 (2 hours)
expire = 604800 (7 days)
default TTL = 86400 (1 day)
------------
Server: UnKnown
Address: 192.168.1.1
------------
Got answer:
HEADER:
opcode = QUERY, id = 2, rcode = NOERROR
header flags: response, want recursion, recursion avail.
questions = 1, answers = 5, authority records = 0, additional = 0
QUESTIONS:
www.overclock.net, type = A, class = IN
ANSWERS:
-> www.overclock.net
canonical name = global.prod.fastly.net
ttl = 21973 (6 hours 6 mins 13 secs)
-> global.prod.fastly.net
canonical name = global-ssl.fastly.net
ttl = 8 (8 secs)
-> global-ssl.fastly.net
canonical name = fallback.global-ssl.fastly.net
ttl = 30 (30 secs)
-> fallback.global-ssl.fastly.net
internet address = 23.235.47.184
ttl = 7 (7 secs)
-> fallback.global-ssl.fastly.net
internet address = 199.27.79.184
ttl = 7 (7 secs)
------------
Non-authoritative answer:
------------
Got answer:
HEADER:
opcode = QUERY, id = 3, rcode = NOERROR
header flags: response, want recursion, recursion avail.
questions = 1, answers = 3, authority records = 1, additional = 0
QUESTIONS:
www.overclock.net, type = AAAA, class = IN
ANSWERS:
-> www.overclock.net
canonical name = global.prod.fastly.net
ttl = 21973 (6 hours 6 mins 13 secs)
-> global.prod.fastly.net
canonical name = global-ssl.fastly.net
ttl = 8 (8 secs)
-> global-ssl.fastly.net
canonical name = fallback.global-ssl.fastly.net
ttl = 30 (30 secs)
AUTHORITY RECORDS:
-> fastly.net
ttl = 104 (1 min 44 secs)
primary name server = ns1.p04.dynect.net
responsible mail addr = hostmaster.fastly.com
serial = 2015031609
refresh = 3600 (1 hour)
retry = 600 (10 mins)
expire = 604800 (7 days)
default TTL = 3600 (1 hour)
------------
Name: fallback.global-ssl.fastly.net
Addresses: 23.235.47.184
199.27.79.184
Aliases: www.overclock.net
global.prod.fastly.net
global-ssl.fastly.net
and here's what I see during an outage.
C:\Users\bsoder>nslookup -d www.overclock.net
------------
Got answer:
HEADER:
opcode = QUERY, id = 1, rcode = SERVFAIL
header flags: response, want recursion, recursion avail.
questions = 1, answers = 0, authority records = 0, additional = 0
QUESTIONS:
1.1.168.192.in-addr.arpa, type = PTR, class = IN
------------
Server: UnKnown
Address: 192.168.1.1
------------
Got answer:
HEADER:
opcode = QUERY, id = 2, rcode = SERVFAIL
header flags: response, want recursion, recursion avail.
questions = 1, answers = 0, authority records = 0, additional = 0
QUESTIONS:
www.overclock.net, type = A, class = IN
------------
------------
Got answer:
HEADER:
opcode = QUERY, id = 3, rcode = SERVFAIL
header flags: response, want recursion, recursion avail.
questions = 1, answers = 0, authority records = 0, additional = 0
QUESTIONS:
www.overclock.net, type = AAAA, class = IN
------------
------------
Got answer:
HEADER:
opcode = QUERY, id = 4, rcode = SERVFAIL
header flags: response, want recursion, recursion avail.
questions = 1, answers = 0, authority records = 0, additional = 0
QUESTIONS:
www.overclock.net, type = A, class = IN
------------
------------
Got answer:
HEADER:
opcode = QUERY, id = 5, rcode = SERVFAIL
header flags: response, want recursion, recursion avail.
questions = 1, answers = 0, authority records = 0, additional = 0
QUESTIONS:
www.overclock.net, type = AAAA, class = IN
------------
*** UnKnown can't find www.overclock.net: Server failed
Health_Edge
Valued Contributor III
•
4.2K Messages
10 years ago
It looks like your router is caching DNS. What router is it? Some have the ability to turn off cache and force all queries direct. If not, you can force it by entering the Cox DNS as static DNS on the network connection. It would be good to only do this on one PC, that way when the outage happens, you can compare one on Cox DNS direct, and one running DNS through router.
Also, anything in the logs of your modem or router along the time the errors occur?
Last, when the outages occur, is it just to some domains, or ALL domains?
0
0
bsoder
New Contributor
•
3 Messages
10 years ago
It's a Netgear R6300. I went through the settings, I don't see anything regarding DNS caching in there. I could enter those three DNS server IPs statically, I suppose, but not sure why that would make a difference.
I have verified that it affects multiple devices - ie. both my computer and my iPhone stop resolving at the same time. I've checked the router logs, nothing unusual sticks out, and I'm running a ping -t against all three of the DNS IPs, no drops.
It's all domains. I opened several command windows with nslookups to different targets in each, hit them each as soon as I had a load failure, they all had the same result.
0
0
Health_Edge
Valued Contributor III
•
4.2K Messages
10 years ago
This person looks to be having a simular problem with their R6300, and the replies point to a known firmware issue. Current work around is to use static DNS on the router, but perhaps firmware release since that post has fixed problem? What firmware are you running?
The reason I suggested setting up static DNS on the devices (not router) was this should force the DNS queries direct to servers instead of routing through 192.168.1.1, which looks to be the problem.
0
0
bsoder
New Contributor
•
3 Messages
10 years ago
yeah, I agree - it looks like it may be a known problem with the router. I'm on the most recent firmware, I'll pursue that avenue and see if I get anywhere - may be that moving to an older version of the firmware fixes it.
Thanks for the help.
0
0
MDTerp66
New Contributor
•
14 Messages
10 years ago
I am having the same problem in Omaha. Brian: How did you get your results?
I am running a new Arris (Motorola) Surfboard SBG6580 on a Windows 7 machine. This started in mid December and I had my network engineer son-in-law look at it. I have had Cox out once (his suggestion: change from Firefox to Chrome). When that did not work, I called Cox again. They wanted $60 to clean the malware. I ran four anti-malware apps, none of which found anything. The problem continues. When I call in, they want me to run Speedtest, which always tests excellent when they are on the line. It timed out on the ping while I was waiting on hold. As soon as they are on, it works fine. Same problem with a Win 8 Wi-Fi connected machine. I have replaced the modem. I can't find if this modem/router is caching the DNS, but I have the DNS pointing at Cox as a static DNS. Speedtest told me it was the fastest DNS for me. Cox tells me the modem has the latest software release. If I turn it off and back on, it will work great for about an hour, then goes south again. Don't think I should be resetting the modem each hour.
Any further suggestions would be appreciated. I am out of ideas.
0
0